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Amendments to the Claims 

The listing of claims will replace all prior versions, and listings of claims in the 
application. 



file in an application environment , the method comprising: 

launching an application wh e n a r e qu e st to access th e file is r e ceiv e d; 

determining, in an operating system supporting the an application, 
whether the file being accessed is secured when a request to access the file is received ; 

wh e n if the file is determined to be secured, activating a cipher module 
and loading the file through the cipher module into the application; and 

wh e n if the file is determined to be non-secured, loading the file into the 
application without activating the cipher module[[.]]; 

wherein the cipher module, once activated, operates transparently to a 
user requesting an access to the file 

2. (Original) The method of Claim 1, wherein the cipher module, once 
activated, operates within the operating system. 

3. (Cancelled) 

4. (Original) The method of Claim 1, wherein the secured file includes a 
header and an encrypted portion, the header including or pointing to security information 
including a file key that, once obtained, can be used to decrypt the encrypted portion. 



1. 



(Currently Amended) A computer implemented method for securing a 
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5. (Original) The method of Claim 4, wherein the determining of whether 

the file being accessed is secured comprises determining if the file being accessed 

includes the header. 



6. (Original) The method of Claim 4, 

wherein the header further includes a flag indicating that the file being 
accessed is secured, and 

wherein the determining of whether the file being accessed is secured 
comprises determining if the file has the flag. 



7. (Original) The method of Claim 4, wherein the loading of the file through 
the cipher module into the application comprises: 
retrieving the file key; 

decrypting the encrypted portion with the file key in the cipher module; 

and 

sending the file in clear mode to the application. 



8. (Currently Amended) The method of Claim 7, wherein the security 
information including the file key is encrypted with a user key, and wherein the 
retrieving of the file key comprises: 

obtaining a user key associated with a the user requesting an access to the 

file; and 
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decrypting the encrypted security information with the user key to retrieve 

the file key. 

9. (Original) The method of Claim 8, wherein the security information 
further includes access rules controlling how and who the secured file can be accessed. 

10. (Currently Amended) The method of Claim 9, wherein the loading of the 
file through the cipher module into the application only happens wh e n if an access 
privilege of the user is within permissions granted by the access rules. 

1 1 . (Currently Amended) A computer implemented method for securing a 
file in an application environment , the method comprising: 

maintaining a file key in a temporary memory space; 
encrypting the file with the file key in a cipher module to produce an 
encrypted portion; 

preparing security information for the encrypted portion, the security 
information being encrypted with a user key and including the file key and access rules 
to control access to the encrypted portion; and 

attaching the encrypted security information to the encrypted portion. 

12. (Original) The method of Claim 11 further comprising deleting the file 
key from the temporary memory space when the attaching of the encrypted security 
information to the encrypted portion is complete. 
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13. (Original) The method of Claim 11, wherein the encrypting of the file 
with the file key, the preparing of the security information, and the attaching of the 
encrypted security information happen whenever the file is caused to be stored in a 
storage space. 

14. (Original) The method of Claim 11, wherein the encrypting of the file 
with the file key, the preparing of the security information, and the attaching of the 
encrypted security information happen upon receiving an instruction from an application 
or an operating system supporting the application. 

15. (Currently Amended) The method of Claim 14, wherein the application is 
provided in a Microsoft Office product and the operating system is a Microsoft Windows 
operating system. 

16. (Previously Presented) The method of Claim 14, wherein the instruction 
is one of (i) Save, (ii) Close and (iii) Exit, all provided in the application. 

17. (Currently Amended) The method of Claim 14, wherein the instruction is 
generated from an automatic operation of saving the file being opened into the a storage 
space, the automatic operation is e ither being triggered by the application itself or the 
operating system. 
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18. (Original) The method of Claim 11 further comprising encrypting the 
security information with a user key associated with a member selected from a group 
consisting of a user, a device, a software module, and a group of users. 

19. (Previously Presented) The method of Claim 1 1 wherein the access rules 
in the security information comprises user information identifying who can access the 
encrypted portion and how the encrypted portion can be accessed. 

20. (Currently Amended) A computer implemented method for providing 
access control to a file in an application environment , the method comprising: 

launching an application und e r an operating syst e m wh e n a r e qu e st to 
acc e ss the fil e is receiv e d; 

forwarding the a request to access the file to a file system manager in the 
an operating system; 

activating a document securing module by the file system manager to 
determine whether the file being accessed is secured; 



activating a cipher module when the file is determined to be secured; and 



loading the file through the cipher module into the an application[[.]]; 



wherein the cipher module, once activated, operates transparently to a 



user requesting an access to the file 



21. 



(Original) The method of Claim 20 further comprising: 
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retrieving security information from the file when the file is determined to 

be secured, the security information including a file key and access rules; and 

obtaining an access privilege of a user requesting to access the file. 

22. (Original) The method of Claim 21, wherein the activating of the cipher 
module proceeds successfully when the access privilege is within permissions granted by 
the access rules. 

23. (Original) The method of Claim 22; wherein the activating of the cipher 
module comprises decrypting an encrypted portion of the secured file with the file key. 

24. (Currently Amended) A softwar e product stor e d on a computer readable 
storage medium , the softwar e product including having computer instructions for 
s e curing a fil e program code recorded thereon, that , tho instructions, when executed by a 
processor, cause causes the processor to p e rform op e rations of access a file in an 
a pplication environment by a method, comprising : 

determining, in an operating system, whether the file being accessed is 
secured when a request to access the file by an application is received; 
when if the file is determined to be secured, 

activating a cipher module that operates in the operating system; 

loading the file through the cipher module into the application; 
wh e n if the file is determined to be non-secured, 
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loading the file into the application without activating the cipher 

module[[.]]; 

wherein the cipher module, once activated, operates transparently to a 
user requesting an access to the file 

25. (Currently Amended) The software product computer readable storage 
medium of Claim 24, wherein the secured file includes a header and an encrypted 
portion, the header including or pointing to security information including a file key that, 
once obtained, can be used to decrypt the encrypted portion. 

26. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 25, wherein the determining of whether the file being accessed is 
secured comprises determining if the file being accessed includes the header. 

27. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 25, wherein the loading of the file through the cipher module into the 
application comprises: 

retrieving the file key; 

decrypting the encrypted portion with the file key in the cipher module; 

and. 

sending the file in clear mode to the application. 
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28. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 27, wherein the security information including the file key is encrypted 
with a user key, and wherein the retrieving of the file key comprises: 

obtaining a user key associated with a the user requesting an access to the 

file; and 

decrypting the encrypted security information with the user key to 

retrieve the 

file key. 

29. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 2$ 28, wherein the security information further includes access rules of 
how and who the secured file can be accessed. 

30. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 29, wherein the loading of the file through the cipher module into the 
application proceeds only when an access privilege of the user is within permissions 
granted by the access rules. 

3 1 . (Currently Amended) A softwar e product stor e d on a computer readable 
storage medium , th e software product including having computer instructions for 
s e curing a fil e program code recorded thereon, that , th e instructions, when executed by a 
processor, caus e causes the processor to p e rform op e rations of secure a file in an 
application environment by a method, comprising : 
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maintaining a file key in a temporary memory space; 

encrypting the file with the file key in a cipher module to produce an 
encrypted file, wherein the file has been opened with an application and the cipher 
module operates transparently as far as a user executing the application is concerned; and 

storing, in a storage space, a secured file including the encrypted file and 
a header, wherein the header includes or points to security information including the file 
key. 

32. (Currently Amended) The software product computer readable storage 
medium of Claim 31 further comprising deleting the file key from the temporary 
memory space when the application is caused to close the file. 

33. (Currently Amended) The software product computer readable storage 
medium of Claim 31, wherein the encrypting of the file with the file key happens 
whenever the file is caused to be stored in the storage space. 

34. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 31, wherein the encrypting of the file with the file key happens upon 
receiving an instruction from the application or an operating system supporting the 
application. 
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35. (Currently Amended) The software product computer readable storage 
medium of Claim 34, wherein the instruction is one of (i) Save, (ii) Close and (iii) Exit, 
all provided in the application. 

36. (Currently Amended) The software product computer readable storage 
medium of Claim 34, wherein the instruction is generated from an automatic operation of 
saving the file being opened into the storage space, the automatic operation is either 
triggered by the application itself or the operating system. 

37. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 3 1 , wherein the security information further includes access rules of 
how and who the secured file can be accessed. 

38. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 37 further comprising encrypting the security information with a user 
key associated with a member selected from a group consisting of a user, a device, a 
software module, and a group of users. 

39. (Currently Amended) The softwar e product computer readable storage 
medium of Claim 31, further comprising attaching the header to the encrypted file, 
wherein the header includes the security information encrypted in addition to a flag 
indicating that the file is secured. 
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40. (Currently Amended) A computing device for securing a file in an 
application environment , the computing device comprising: 

an application, when executed, accessing the file that includes security 
information and an encrypted portion, the security information further including a file 
key and access rules, and the encrypted portion being an encrypted version of the file; 

a cipher module activating upon determining that the file being accessed 

is secured; 

wherein the security information is encrypted with a user key and can be 
decrypted with a the user key when authenticated; and 

wherein the file key can be retrieved to decrypt the encrypted portion only 
after the access rules have been successfully measured against access privilege of the 
user. 

41. (Currently Amended) The computing device of Claim 40 further 
including comprising an operating system supporting operations of the application, and 
wherein the cipher module is embedded in the operating system. 

42. (Previously Presented) The computing device of Claim 40, wherein the 
cipher module operates in a path through which the file is caused to pass when accessed 
by the application. 
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43. (previously Presented) The computing device of Claim 40 further 
including a memory space and a storage space, and wherein the file key is temporarily 
kept in the memory space when the file is successfully loaded into the application. 

44. (Previously Presented) The computing device of Claim 43, wherein the 
file key is deleted from the memory space as soon as the file is written back to the 
storage space. 

45. (Currently Amended) The computing device of Claim 40, wherein the 
user key becomes authenticated only when the user is authenticated by an authentication 
process to v e rify who the us e r claims to b e. 

46. (Currently Amended) The computing device of Claim 40, wherein the 
computing device is coupled to a second computing device over a data network, the user 
key becomes authenticated only after the user is successfully logged from the computing 
device into the the second computing device. 

47. (Currently Amended) The computing device of Claim 40, wherein the 
computing device is provided with means for capturing biometric data of the user, the 
user key becomes authenticated only after the biometric data is successfully verified te 
support who th e us e r claims to b e. 
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48. (Original) The computing device of Claim 40, wherein the user key 
becomes authenticated after the computing device receives credential information from 
the user. 

49. (Currently Amended) The computing device of Claim 48, wherein the 
credential information includes at least one of a password entered by the user, biometric 
information of the user, and personalized information about the user. 

50. (Original) The computing device of Claim 49, wherein the biometric 
information is captured from a device coupled to the computing device. 

51. (New) The method of claim 1, further comprising: 

launching an application when the request to access the file is received. 

52. (New) The method of claim 11, further comprising: 
launching an application that accesses the file. 

53. (New) The method of claim 20 further comprising: 

launching an application under the operating system when the request to 
access the file is received. 

54. (New) The computer readable storage medium of claim 24, wherein the 
program code stored on the medium, when executed, causes an application to be 
launched when the request to access the file is received. 
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55. (New) The computer readable storage medium of claim 31, wherein the 
program code stored on the medium, when executed, causes an application to be 
launched. 

56. (New) The computing device of claim 40, wherein the application is 
launched to access the file. 
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